5

CVE-2008-1837

libclamunrar in ClamAV before 0.93 allows remote attackers to cause a denial of service (crash) via crafted RAR files that trigger "memory problems," as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Clam Anti-virusClamav Version <= 0.92.1
Clam Anti-virusClamav Version0.15
Clam Anti-virusClamav Version0.20
Clam Anti-virusClamav Version0.21
Clam Anti-virusClamav Version0.22
Clam Anti-virusClamav Version0.23
Clam Anti-virusClamav Version0.24
Clam Anti-virusClamav Version0.51
Clam Anti-virusClamav Version0.52
Clam Anti-virusClamav Version0.53
Clam Anti-virusClamav Version0.54
Clam Anti-virusClamav Version0.60
Clam Anti-virusClamav Version0.60p
Clam Anti-virusClamav Version0.65
Clam Anti-virusClamav Version0.67
Clam Anti-virusClamav Version0.68
Clam Anti-virusClamav Version0.68.1
Clam Anti-virusClamav Version0.70
Clam Anti-virusClamav Version0.71
Clam Anti-virusClamav Version0.72
Clam Anti-virusClamav Version0.73
Clam Anti-virusClamav Version0.74
Clam Anti-virusClamav Version0.75
Clam Anti-virusClamav Version0.75.1
Clam Anti-virusClamav Version0.80
Clam Anti-virusClamav Version0.80_rc1
Clam Anti-virusClamav Version0.80_rc2
Clam Anti-virusClamav Version0.80_rc3
Clam Anti-virusClamav Version0.80_rc4
Clam Anti-virusClamav Version0.81
Clam Anti-virusClamav Version0.81_rc1
Clam Anti-virusClamav Version0.82
Clam Anti-virusClamav Version0.83
Clam Anti-virusClamav Version0.84
Clam Anti-virusClamav Version0.84_rc1
Clam Anti-virusClamav Version0.84_rc2
Clam Anti-virusClamav Version0.85
Clam Anti-virusClamav Version0.85.1
Clam Anti-virusClamav Version0.86
Clam Anti-virusClamav Version0.86.1
Clam Anti-virusClamav Version0.86.2
Clam Anti-virusClamav Version0.86_rc1
Clam Anti-virusClamav Version0.87
Clam Anti-virusClamav Version0.87.1
Clam Anti-virusClamav Version0.88
Clam Anti-virusClamav Version0.88.1
Clam Anti-virusClamav Version0.88.3
Clam Anti-virusClamav Version0.88.4
Clam Anti-virusClamav Version0.88.5
Clam Anti-virusClamav Version0.88.6
Clam Anti-virusClamav Version0.88.7
Clam Anti-virusClamav Version0.90
Clam Anti-virusClamav Version0.90.1
Clam Anti-virusClamav Version0.90.2
Clam Anti-virusClamav Version0.90_rc1.1
Clam Anti-virusClamav Version0.90_rc2
Clam Anti-virusClamav Version0.90_rc3
Clam Anti-virusClamav Version0.90rc1
Clam Anti-virusClamav Version0.91
Clam Anti-virusClamav Version0.91.1
Clam Anti-virusClamav Version0.91.2
Clam Anti-virusClamav Version0.91rc1
Clam Anti-virusClamav Version0.91rc2
Clam Anti-virusClamav Version0.92
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.76% 0.907
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00009.html
http://secunia.com/advisories/29891
http://www.mandriva.com/security/advisories?name=MDVSA-2008:088
http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html
http://secunia.com/advisories/31882
http://www.us-cert.gov/cas/techalerts/TA08-260A.html
US Government Resource
http://www.vupen.com/english/advisories/2008/2584
http://secunia.com/advisories/30328
http://security.gentoo.org/glsa/glsa-200805-19.xml
http://www.securityfocus.com/bid/28784
http://secunia.com/advisories/31576
http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html
http://www.vupen.com/english/advisories/2008/1227/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41870
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=898